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Continuation of Substance of Interview including description of the general nature of what was discussed: Examiner 
and Applicant's representative discussed claimed limitation and the prior art interpretation. Paragraphs 0017 and 0078 
of the Specification have been referencing to during the discussion and Applicant's representative agrees to amend the 
claims to further distinguish the claimed invention from the cited prior art. . 



1 . (Currently Amended) A network security testing apparatus comprising: 
at least one [[a ]} first tester for generating j a security vulnerability attack 

simulation comprised of a plurality of waves of tests f or iter^Y^ testing for network security 
vulnerabilities of a network system under test-foat-- the at feast one first tester is adapted to 
communicably couple to [[a]] the network system under test, said at least one f irst tester adapted 
to sequentially iteratively perform a plurality of Waves of a plurality of o e qu e ntial tests on the 
system under test to obtain network security vulnerability information; 

wherein each [[of]] test in t he plurality of se quenti al waves of t ests are adapted to 
return the network security vulnerability infoimatiort regarding the network system under test, 
the network security vulnerability information provided by each [[bfjj test in t he plurality 6f 
s e quential waves of tests being more specific to the network system under test than the network 
security vulnerability information provided by a previous test; ; 

wherein each Hofl| test in t he plurality of bcqugntiol waves of tests are ifca*e 
specifically configur e d modified in real-time to adaift to ffth»}JiSsSfi5^ security obstacles of 
the network system under test detected based on the network security vulnerability ^ information 
gained from the previous test and ^obtain additional network security vulnerability information 
from the network system under test. 

2. (Currently Amended) The network security testing apparatus of claim 1, wherein 
each of the plurality of se qu e ntial iterative tests are more specifically configured to adapt to 
system configuration of the network system under test based on the network security 
vulnerability information gained from the previous test and obtain the additional network 
security vulnerability information fr6m the network system uftdfcr test, 

3. (Canceled) 

4. (Currently Amended) The network security testing apparatus of claim [[331 1, 
wherein the network security vulnerability information includes information regarding network 
connectivity from the at least one first tester to the network system under test. 



5. (Canceled) 



6. (Previously Presented) The network security testing apparatus of claim!, wherein 
the network security vulnerability irifortiiation inclines connection Morfnation relating to an IP 
address used in the previous test. 

7. (Currently Amended) The network security testing apparatus of claim [[3]J I, 
further comprising: 

[[a]] at least one second tester that is adapted to communicably couple to the 
network system under test; 

wherein the previous test is executed by said at least one first tester; 

wherein determination of whether a subsequent test is executed by said at least 
g ne first tester or by said at least one s econd tester is made based at least partially upon the 
network security vulnerability information obtained by the previous test in order to adapt to the 
discovered security obstacles of the network under test. 

8. (Previously Presented) The ftetwork security testing apparatus of claim 7, 
wherein the subsequent test includes execution of a test tool selected from a plurality of test tools 
based at least partially upon the network security Wnerttbttity information obtained by the 
previous test. 

9. (Canceled) 

10. (Previously Presented) The ftetwork security testing apparatus of Claim X 
wherein the plurality of tests continue until all relevant information about the system under test 
has been collected. 

11. (Previously Presented) The network security testing apparatus of claim 7, 
wherein the subsequent test includes execution Of a test tool selected from a plurality of test tools 
based at least partially upon the system environment information. 



12. (Canceled) 



1 3 . (Currently Amended) A network security testing method comprising: 

a) executing a first [[test]] wave of tests in a security vulnerability attack 
simulation, by rfall at least one first tester to test for network security vulnerabilities of a network 
system under test, wherein the first litest!] wave of teste is targeted at [[a]] the network system 
under test, and wherein the at least one first tester is communicably coupled to the network 
system under test; 

b) receiving first information from the first [[test]] wave of teats about the 
network system under test, after executing the first {[test]] wave of tests, the first information 
comprising network security vulnerability information; 

c) executing a second fftestll wave of tests in a security vulnerability attack 
Simulation, to test for the network vulnerabilities of the network system under test after said 
receiving first information, wherein the second [{test]} wave of tests is [[more]] specifically 
configured modified in real time, to adapt to frthell discovered security obstacles of the network 
system under test detected based on the network security vulnerability information gained from 
the first [[test]] wave of tests and obtain seeeret additional network security vulnerability 
information from the network system under test biased on the first information, the seeend 
additional network sec urity vulnerability i nformation comprising additional n e twork security 
vulnerability information is_more specific to the network, system under test than the first 
information; 

d) receiving the second additional netwoik security vulnerability i nformation 
from the second [[test]] wave of tests about the network system under test, after executing the 
second [[test]] wave of tests : 

e) repeating steps a)-d) a plurality of times until relevant information about the 
system under test has been collected; and 

f) wherein the network security vulnerability information obtained from each 
subsequent [[test]] wave of tests is more specific to the system under test based on the network 
security vulnerability information provided by each previous test. 



1 4. (Currently Amended) The network security testing method of claim 13, wherein 
the time period between said executing the first [[test]] wave of tests a nd said executing the 
second [[test]] wave of tests can be negligible. 

15. (Canceled) 

16. (Previously Presented) The network SMUrityi testing method of claim 13, wherein 
said network security vulnerability information comprises information regarding network 
connectivity from the first tester to the network system under test. 

17. (Canceled) 

1 8 (Previously Presented) The network security: testing method of claim 13, wherein 
said receiving network security vulnerability information Comprises receiving connection 
information relating to an IP address used in said executing me first test. 

19. (Currently Amended) The network security testing method of claim 13, wither 
comprising determining whether the second test a test in the second wave of tests will be 
executed by the at least one first tester or by if ail at least one s econd tester based upon the 
network security vulnerability information from the first test, before said executing the second 
test. 

20. (Currently Amended) The network security testing method of claim 1 3, further 
comprising selecting the second test in the secOnd wave of tests from a plurality of tests based at 
least partially upon the network security vulnerability information. 

21. (Previously Presented) The network security testing method of claim 13, further 
comprising: 

determining whether all possible network security vulnerability information 
regarding the system under test has been received in light of the plurality of tests; and 



executing additional tests until ail pos^ble network security vulnerability 
information regarding the system under test has been received in light of the plurality of tests. 

22. (Canceled) 

23. (Currently Amended) The network security testing method of claim 1 9, further 
comprising selecting the second test in the second Wave of tests fr om a plurality of tests based at 
least partially upon the network security vulnerability information. 

24. (Canceled) 



25. (Currently Amended) A computer program product for network security testing 
stored in a computer-readable medium; comprising: 

a) instructions for executing a first [[test]} wave of tests in a security vumerabUitv 
attack simulation by [[a]] at least one fi rst testier to test for network security vulnerabilities of a 
network system under test, wherein the first [[test]] wave of : tests i s targeted at Ifo]] the network 
system under test, and wherein the at least one first tester is coinmunicabiy coupled to the 
network system under test; 

b) instructions for receiving fnst information from the first [[test]] wave of tests 
about the network system under test, after executing the first; [[test]] wave Of tests , the first 
information comprising network security vulnerability information; 

c) instructions for executing a second {[test]] wave of tests to test for the network 
security vulnerabilities of the network system under test after said receiving first information, 
wherein the second [[test]] wave of testa is mate specifieaHy eenfigured modified in real tiirie to 
adapt to the discovered security obstacles of the network system under test detected based on the 
network security vulnerability information gained from the first [[test]] wave of tests a nd obtain 
aeeend additional network security vulnerability in formation from tb the network system under 
test based on the first informationi the mii^: 1 ^^^^^^!^^^^ vulnerability 
information comprising additional network ooonrity vulnerabil i ty information |g_more specific to 
the network system under test than the first information; 



d) instructions for receiving the seeead additional network security vulnerability 
information from the second [[test]] wave of tests about the network system under test, after 
executing the second [{test]) wave of tests : 

e) instructions for repeating steps a}-d) a plurality of times until all relevant 
information about the system under test has been collected; and 

f) instructions for wherein the network security Vulnerability information obtained 
from each subsequent [[test]] wave of tests is more specific to the system under test based on the 
network security vulnerability information provided by each previous test. 

26. (Currently Amended) The computer program product of claim 25, wherein the 
time period between executing the first [[test]] wave of tests and executing the second [[test]] 
wave of tests can be negligible. 

27. (Canceled) 

28. (Currently Amended) The computer program product of claim 25, wherein said 
network security vulnerability infoltfiatioti comprises information regarding network 
connectivity from the at least one first tester to the network system under test 

29. (Canceled) 

30. (Currently Amended) The computer program product of claim 25, wherein 
receiving network security vulnerability information comprises receiving session establishability 
information relating to an IP address used in executing the first test. 

31. (Previously Presented) The computer prbjpam product of claim 25, further 
comprising instructions for determining whether fee tiDoond foot a test in the second wave of 
tests w ill be executed by the at least one fi rst tester or by { f ia}i at bast one second tester based 
upon the network security vulnerability ittfomtatibtt from the first test, before said executing the 
second test 



32. (Previously Presented) The wmpoter program product of claim 25, further 
comprising instructions for selecting the Seeoad test in the secorid wave of tests fr om a plurality 
of tests based at least partially upon the network security vulnerability information. 

33. (Previously Presented) The computer program product of claim 25, further 
comprising: 

instructions for determuiing whether all possible network security vulnerability 
information regarding the system under test has been received in light of the plurality of tests; 
and 

instructions for executing additional tests until all possible network security 
vulnerability information regarding die system under test has been received in light of the 
plurality of tests. 

34. (Canceled) 

35. (Currently Amended) The computer program product of claim 31, further 
comprising instructions for selecting die second test in the second wave of tests fr om a plurality 
of tests based at least partially upon the network security vulnerability information. 

36. (Canceled) 

37. (Canceled) 



38. (Canceled) 

39. (Canceled) 

40. (Canceled) 



41. (Canceled) 



42. (Canceled) 

43. (Canceled) 

44. (Canceled) 

45. (Canceled) 

46. (Canceled) 

47. (Canceled) 

48. (Canceled) 

49. (Canceled) 

50. (Canceled) 

51. (Canceled) 

52. (Canceled) 

53. (Canceled) 

54. (Canceled) 

55. (Canceled) 

56. (Canceled) 

57. (Canceled) 



58. (Currently Amended) A network security testing apparatus comprising: 

a plurality of testers for generating a security vulnerability attack simulation 
comprised of a plurality of waves of tests for iterativetv t esting for network security 
vulnerabilities of a network system under test to obtain network security vulnerability 
information; 

wherein each of said plurality of testers is adapted to communicably couple to 
[[a]] the network system under test; 

wherein a test of the network system under test is performed by a selected tester 
of said plurality of testers, said selection of said selected tester to adapt in real rime to devested 
discovered security obstacles of the network system under test based on the network security 
vulnerability information gained from a previous test to obtain more specific network security 
vulnerability information from the network system under test; 

wherein said plurality of testers has a load balance characteristic describing a 
degree of balance of loads of testers of said plurality of testers; and 

wherein the selected tester is selected from said plurality of testers based 
additionally on optimizing the load balance characteristic. 

59. (Canceled) 

60. (Canceled) 

61. (Canceled) 

62. (Original) The network security testing apparatus of claim 58, 

wherein each tester Of said plurality of testers has at least one quality of 
communicable coupling to the system under test; and 

wherein the selected tester is selected from said plurality of testers based at least 
partially on the selected tester's quality of communicable coupling. 



63. (Original) The network 'security testing apparatus of claim 62, wherein the 
quality of communicable coupling includes; 

costper bit; 
absolute speed; and 

geographical proximity of the selected tester to the system under test. 

64. (Currently Amended) A rietwbrk security testing method comprising: 
selecting a se l e ct e d at least one t ester from a plurality of testers for generating a 

security vulnerability attack simulation cdtnbrised of a nluriilitv of wave s of tests for iterativelv 
testing for network security vulnerabilities of a network system under test to obtain network 
security vulnerability information, said selection of isaid selected at least one t ester to adapt to 
real time is modified to discovered security obstacles of the network system under test detected 
based on network sectiritv vulnerability lfifottntttioH gained from a previous test to obtain more 
specific network security vulnerability information from network system under test; 

executing a test by the selected tester, herein the test is targeted at a the network 
system under test, and wherein the selected tester is conttnunicably coupled to the network 
system under test; 

wherein the plurality of testers has a load balance characteristic describing a 
degree of balance of loads of testers of the plurality of testers; and 

wherein said selecting a selected tester frbni a plurality of testers is further based 
at least partially on optimizing the load balance characteristic. 

65. (Canceled) 

66. (Canceled) 

67. (Canceled) 

68. (Previously Presented) The network security teeing method of claim 64 r 
wherein each tester of the plurality of testers has at least one quality of 

communicable coupling to the network system under test; arid 



wherein said selecting a selected tester ftpm a plurality of testers is further based 
at least partially on the selected tester's quality of communicable foupling. 

69, (Previously Presented) The network security testing method of claim 68, wherein 
the quality of communicable coupling includes: 

cost per bit; 
absolute speed; and 

geographical proximity of the selected ite&ter to the system under test. 

70, (Currently Amended) A computer program product for network security testing 
stored in a computer-readable medium* comprising: 

instructions for sele cting a at least orie selected tester from a plurality of testers 
for generating a security vulnerability atiabk simulation conmrised of a plurality of waves of tests 
for iterativelv testing for network security yulnrabilities of a network system under test to obtain 
network security vulnerability information, said selection of said seleeted at least one tester to 
adapt in real time is modified to discovered s ecitritv obstacles of the network system undef test 
detected based on network secUntv vulfler^fe a previous test to 

obtain more specific network security vulnerability iitf^ network system under test; 

instructions for executing a test by the selected tester, wherein the test is tetgeted 
at a system tinder test, and wherein the selected tester is cornmunicably coupled to the network 
system under test; 

wherein the plurality of testers has a i&ad balance characteristic describing a 
degree of balance of loads of testers of the plurality of testers; and 

wherein the selecting a selected tester from a jilurtdity of testers is further based at 
least partially on optimizing the load balance characteristic. 

71, (Canceled) 
72- (Canceled) 



73. (Canceled) 



74. (Previously Presented) "The eomptfter program product of claim 70, 
wherein each tester of the plurality of testers has at least one quality of 

communicable coupling to the system under test; and : 

wherein the selecting a selected tester from a plurality of testers is further based at 
least partially on the selected tester's quality of communicable coupling. 

75. (Previously Presented) The computer program product of claim 74, wherein the 
quality of communicable coupling includes: 

cost per bit; 
absolute speed; and 

geographical proximity of the selected tester to the system under test. 

76. (Currently Amended) A network security testing apparatus comprising: 

[[a]] at least one fi rst tester that is adapted to comtnunicably couple to a network 
system under test to generate a security vulnerability attack simulation comprised of a plurality 
of waves of tests to perform network security vultoerability testing, wherein said aj least one f irst 
tester is adapted to iteratively perform a piuralitv of Wves of tests f ft estll on the network system 
under test to obtain network security vutai^ifity information oh the network system under test; 

wherein each test in the plurality of waves of tests are specifically modified in 
real-time to adapt to discovered security obstacles of the network system under test detected 
based on the network security vulnerab ility information gained from the previous test and to 
obtain additional network security Mherabmtv ^ 

wherein said at least one first tester is adapted to make a first attempt to 
communicably couple to the network system under test before executing the test to obtain 
network security vulnerability infonnatiort; 

wherein said at least one first tester is adapted to make a second attempt to 
communicably couple to the system under test after executing the test to obtain network security 
vulnerability information ; and 

wherein the combination of success of the first attempt and failure of the second 
attempt are interpreted as detection of the test by the network system under test. 



wherein the combination of success of the first attempt and failure of the second 
attempt are interpreted as detection of the test hy the network system under test. 

77. (Canceled) 

78. (Canceled) 

79. (Canceled) 

80. (Canceled) 

81. (Canceled) 

82. (Canceled) 

83. (Canceled) 

84. (Canceled) 

85. (Canceled) 

86. (Canceled) 

87. (Canceled) 

88. (Canceled) 

89. (Canceled) 

90. (Canceled) 



91. (Canceled) 

92. (Canceled) 

93. (Canceled) 

94. (Canceled) 

95. (Canceled) 

96. (Canceled) 

97. (Canceled) 

98. (Canceled) 
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100. (Canceled) 

101. (Canceled) 
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105. (Canceled) 

106. (Canceled) 



107. (Canceled) 
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110. (Canceled) 

111. (Canceled) 



